CWE-268
21 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-268page 1 of 1
- CVE-2019-3844HIGHCVSS 7.8EG 7.82019-04-26
It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A loc…
- CVE-2022-1003LOWCVSS 3.3EG 4.92022-03-18
One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two distinct privileges/capabilities in a way that allows them to override certain rest…
- CVE-2023-0759HIGHCVSS 8.8EG 8.82023-02-09
Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8.
- CVE-2023-0971CRITICALCVSS 9.6EG 9.62023-06-21
A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encryption keys to be recovered.
- CVE-2023-20194MEDIUMCVSS 4.9EG 4.92023-09-07
A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary files on the underlying operating system of an affected device. To exploit this vulnerability, an attacker must have valid Administ…
- CVE-2023-2250MEDIUMCVSS 6.7EG 8.82023-04-24
A flaw was found in the Open Cluster Management (OCM) when a user have access to the worker nodes which has the cluster-manager-registration-controller or cluster-manager deployments. A malicious user can take advantage of this and bind th…
- CVE-2023-5839HIGHCVSS 7.8EG 8.82023-10-29
Privilege Chaining in GitHub repository hestiacp/hestiacp prior to 1.8.9.
- CVE-2024-1250MEDIUMCVSS 6.5EG 6.52024-02-12
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with manage_group_access_tokens permission, they may be able to create group access tokens with Owner …
- CVE-2024-1299MEDIUMCVSS 6.5EG 6.52024-03-07
A privilege escalation vulnerability was discovered in GitLab affecting versions 16.8 prior to 16.8.4 and 16.9 prior to 16.9.2. It was possible for a user with custom role of `manage_group_access_tokens` to rotate group access tokens with …
- CVE-2024-47045HIGHCVSS 7.8EG 7.82024-09-26
Privilege chaining issue exists in the installer of e-Tax software(common program). If this vulnerability is exploited, a malicious DLL prepared by an attacker may be executed with higher privileges than the application privilege.
- CVE-2024-4877HIGHCVSS 8.8EG 8.82025-04-03
OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges
- CVE-2025-0889HIGHCVSS 7.8EG 7.82025-02-26
Prior to 25.2, a local authenticated attacker can elevate privileges on a system with Privilege Management for Windows installed, via the manipulation of COM objects under certain circumstances where an EPM policy allows for automatic priv…
- CVE-2025-20112MEDIUMCVSS 5.1EG 5.12025-05-21
A vulnerability in multiple Cisco Unified Communications and Contact Center Solutions products could allow an authenticated, local attacker to elevate privileges to root on an affected device. This vulnerability is due to excessive perm…
- CVE-2025-2297HIGHCVSS 7.8EG 7.82025-07-28
Prior to version 25.4.270.0, a local authenticated attacker can manipulate user profile files to add illegitimate challenge response codes into the local user registry under certain conditions. This allows users with the ability to edit th…
- CVE-2025-2903HIGHCVSS 8.5EG 0.02025-04-17
An attacker with knowledge of creating user accounts during VM deployment on Google Cloud Platform (GCP) using the OS Login feature, can login via SSH gaining command-line control of the operating system. This allows an attacker to gain ac…
- CVE-2025-32955MEDIUMCVSS 6.0EG 6.02025-04-21
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Versions from 0.12.0 to before 2.12.0 are vulnerable to `disable-sudo` bypass. Harden-Runner includes a policy option `disable-sudo` to prevent the …
- CVE-2025-36124MEDIUMCVSS 5.9EG 5.92025-08-12
IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 could allow a remote attacker to bypass security restrictions caused by a failure to honor JMS messaging configuration
- CVE-2025-49741HIGHCVSS 7.4EG 7.42025-07-01
No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.
- CVE-2025-64701HIGHCVSS 7.8EG 7.82025-12-11
QND Premium/Advance/Standard Ver.11.0.9i and prior contains a privilege escalation vulnerability, which may allow a user who can log in to a Windows system with the affected product to gain administrator privileges. As a result, sensitive …
- CVE-2025-7973HIGHCVSS 8.5EG 0.02025-08-14
A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be …
- CVE-2026-32325HIGHCVSS 7.8EG 7.82026-06-01
Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can log in to the server where the affected product is installed may obtain SYST…
Map vulnerabilities like CWE-268 to your infrastructure
EchelonGraph correlates every CVE — across CWE-268 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →